Thank you for your reply!

Currently, my psk.txt has the following content:
X.X.X.X 1234
where X.X.X.X is the IP address given by the NAT to the Spoke.

I learned about X.X.X.X through the racoon error message. Is there a better way 
to configure it without having to specify X.X.X.X?

I will look into certificates. Thank you again!

Date: Wed, 27 Aug 2014 14:55:12 +0300
Subject: Re: [opennhrp-devel] Content of psk.txt when Spoke is behind a NAT
From: alin.gruie...@gmail.com
To: brucewilson0...@outlook.com
CC: opennhrp-devel@lists.sourceforge.net

Hello,

 Mine is:

* <very long and not useful password>

If you need something more secure I suggest to look how to implement 
certificates. 


HTH.
-----
Sincerely / Cu stimă,
Alin Gruiescu
Tel:  +40 7711 03172



On Wed, Aug 27, 2014 at 2:45 PM, Bruce Wilson <brucewilson0...@outlook.com> 
wrote:




Hello,

I am trying to have OpenNRP run between (1) a Linux (Ubuntu 14.04, kernel 
3.13.0) Spoke behind a NAT/firewall, and (2) a Linux (Ubuntu 12.04, kernel 
3.14.17) Hub in the Internet. What should the file /etc/racoon/psk.txt on the 
Linux Hub contain, especially considering that I do not know the IP address of 
the Linux Spoke that will be assigned by the NAT?


When running racoon, I get the following error message on the Linux Hub: 
"ERROR: couldn't find the pskey for X.X.X.X" I derive that X.X.X.X is the 
public IP address assigned by the NAT to the Linux Spoke, and updated the file 
/etc/racoon/psk.txt, but is there a better way to solve this problem?


Thank you very much for your help,

Bruce
                                          

------------------------------------------------------------------------------

Slashdot TV.

Video for Nerds.  Stuff that matters.

http://tv.slashdot.org/
_______________________________________________

opennhrp-devel mailing list

opennhrp-devel@lists.sourceforge.net

https://lists.sourceforge.net/lists/listinfo/opennhrp-devel



                                          
------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
opennhrp-devel mailing list
opennhrp-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/opennhrp-devel

Reply via email to